Vulnerability Bulletins

Threat Research: New Method of Volume Shadow Backup Deletion Seen in Recent Ransomware


System information

   
Affected software VMWare

Description

VMware Threat Analysis Unit (TAU) researchers have recently observed a new technique for the deletion of volume shadow copies. In a recent ransomware sample it was discovered that the technique, which could still be in development, uses Windows COM (Component Object Model) libraries like a legitimate backup solution to delete all volume shadow copies resulting … ContinuedThe post Threat Research: New Method of Volume Shadow Backup Deletion Seen in Recent Ransomware appeared first on

More info:

https://blogs.vmware.com/security/2022/09/threat-research-new-method-of-volume-shadow-backup-deletion-seen-in-recent-ransomware.html?utm_source=rss&utm_medium=rss&utm_campaign=threat-research-new-method-of-volume-shadow-backup-deletion-seen-in-recent-ransomware

Standar resources

Property Value
CVE

Version history

Version Comments Date
1.0 Advisory issued 2022-09-22
Ministerio de Defensa
CNI
CCN
CCN-CERT